UBUNTU-CVE-2020-13776
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 03 Jun 2020, 03:15
Last modified:22 Apr 2026, 12:28
Vulnerability Summary
Overall Risk (default)
medium
27/100 CVSS Score
6.7 MEDIUM
3.1 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
03 Jun 2020, 03:15
Published
Vulnerability first disclosed
22 Apr 2026, 12:28
Last Modified
Vulnerability information updated
Description
systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082.
CVSS Metrics
- v3.1•MEDIUM•Score: 6.7CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected Systems
- ubuntu•systemd
all